CVE-2010-0525

Name of the Vulnerable Software and Affected Versions Mail in Apple Mac OS X versions prior to 10.6.3

Description The issue is related to the improper enforcement of the key usage extension during the processing of a keychain that specifies multiple certificates for an e-mail recipient. This might make it easier for remote attackers to obtain sensitive information via a brute-force attack on a weakly encrypted e-mail message.

Recommendations For Mail in Apple Mac OS X versions prior to 10.6.3, update to version 10.6.3 or later to resolve the issue.